Exploit for #VU97621 Improper verification of cryptographic signature in Keycloak
Vulnerability identifier: #VU97621
Vulnerability risk: Medium
CVSSv3.1: 7.3 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-347
Exploitation vector: Network
Exploits in database: 1
- October 11, 2024
- CVE-2024-8698-POC [Github]
Impact: Information disclosure and data manipulation
Vulnerable software:
Keycloak
Server applications /
Directory software, identity management
Vendor: Keycloak
